$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4B86/8933148AF7E311EF8ADA8A41C4F9AE02/pcmHAk0KjqwJZAn9mewy7JBHC6M.mft File: pcmHAk0KjqwJZAn9mewy7JBHC6M.mft (raw, json) Hash identifier: MIsjM9MlRdBvMdpsfEAvS5Xw81z0sEzeTYZ4JRmm6bk= Subject key identifier: B5:53:64:21:D2:35:73:DA:95:9A:FC:ED:9C:D3:75:19:73:AC:FF:CB Authority key identifier: A5:C9:87:02:4D:0A:8E:AC:09:64:09:FD:99:EC:32:EC:90:47:0B:A3 Certificate issuer: /CN=A91E4B86/serialNumber=A5C987024D0A8EAC096409FD99EC32EC90470BA3 Certificate serial: 5F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pcmHAk0KjqwJZAn9mewy7JBHC6M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4B86/8933148AF7E311EF8ADA8A41C4F9AE02/pcmHAk0KjqwJZAn9mewy7JBHC6M.mft Manifest number: 5C Signing time: Sat 23 Aug 2025 07:23:14 +0000 Manifest this update: Sat 23 Aug 2025 07:23:14 +0000 Manifest next update: Sat 30 Aug 2025 07:23:14 +0000 Files and hashes: 1: pcmHAk0KjqwJZAn9mewy7JBHC6M.crl (hash: zZ5sE4g+4gxWFctfHEkdG3l9hYIc6uQh7VqG0ZFh/zo=) 2: 4C51E1D4F7E511EF9A28D363C4F9AE02.roa (hash: EWVCVV5zCZB19LClSuWFTWXQU193NPHqHKJqFm4wMOE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4B86/8933148AF7E311EF8ADA8A41C4F9AE02/pcmHAk0KjqwJZAn9mewy7JBHC6M.crl rsync://rpki.apnic.net/member_repository/A91E4B86/8933148AF7E311EF8ADA8A41C4F9AE02/pcmHAk0KjqwJZAn9mewy7JBHC6M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pcmHAk0KjqwJZAn9mewy7JBHC6M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 95 (0x5f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4B86, serialNumber=A5C987024D0A8EAC096409FD99EC32EC90470BA3 Validity Not Before: Aug 23 07:23:14 2025 GMT Not After : Aug 30 07:23:14 2025 GMT Subject: CN=68a96c62-9063 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:fb:9d:2e:fa:4e:d1:c3:98:28:d3:d4:eb:0c: 2d:7e:f5:02:16:ca:7c:a2:fe:06:38:33:db:1f:0f: c0:12:64:05:b0:09:b3:e9:d9:27:7b:0f:10:84:fc: 00:41:9b:25:b5:94:50:b1:ab:78:34:92:d0:19:48: c3:b7:cd:08:c6:2c:67:3b:76:f9:83:f3:3f:79:80: 09:a2:5b:0a:82:61:a1:b8:54:30:21:cf:5e:81:1f: a0:fc:54:86:2f:47:57:37:ff:b8:4a:90:ef:e1:fe: 4c:e0:25:88:ef:b5:b0:54:6b:24:ab:ee:46:a6:54: 63:21:59:fd:41:b5:f5:eb:fc:b2:3f:ab:d6:0d:c7: ea:9a:62:c6:b7:66:73:77:9d:be:b7:ab:d0:c1:95: ff:7b:8d:f0:df:d4:ae:50:a7:7a:b4:50:32:49:d5: 80:f7:cc:24:32:2e:7e:b9:1e:13:4e:e7:e7:33:c5: 8b:0b:73:95:02:cf:33:4b:e7:f9:7e:0b:2c:ae:84: 0b:b0:15:a6:9b:d9:a7:37:0c:13:f9:3d:84:38:98: 55:f7:0e:b9:b0:86:97:3e:04:57:48:f1:bc:8a:b3: ee:5d:f9:b1:3b:00:f7:3b:4d:c5:ee:af:54:5d:18: a2:14:08:4f:49:3f:93:77:61:de:94:ec:94:bb:f5: 0b:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:53:64:21:D2:35:73:DA:95:9A:FC:ED:9C:D3:75:19:73:AC:FF:CB X509v3 Authority Key Identifier: keyid:A5:C9:87:02:4D:0A:8E:AC:09:64:09:FD:99:EC:32:EC:90:47:0B:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4B86/8933148AF7E311EF8ADA8A41C4F9AE02/pcmHAk0KjqwJZAn9mewy7JBHC6M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pcmHAk0KjqwJZAn9mewy7JBHC6M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4B86/8933148AF7E311EF8ADA8A41C4F9AE02/pcmHAk0KjqwJZAn9mewy7JBHC6M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:3b:16:24:b6:c0:fd:28:34:55:36:d8:a9:41:de:98:c4:a4: 43:0a:df:9e:b1:1e:c2:bd:13:2c:28:61:a0:5f:fe:a0:1e:9d: fb:93:b3:4a:20:ad:98:65:28:ef:0c:9c:66:80:fc:fc:bf:82: dc:9c:cd:87:0b:03:78:5a:1e:3a:51:ea:4d:bd:bb:22:81:9a: 46:69:33:e0:87:d6:07:88:e8:5a:9d:ea:0e:63:29:67:4d:49: 90:95:10:52:df:12:23:50:cf:f9:43:8b:7d:40:1d:f4:18:a0: 3a:7a:0c:29:78:e2:13:bf:45:75:8f:a8:a3:97:c0:04:3e:97: 99:45:e0:d0:e7:15:df:78:5c:1a:17:c6:1d:da:19:67:20:4a: 67:ce:01:d7:99:f3:e9:83:00:01:9e:c9:03:54:2a:ef:13:3e: 0a:66:9a:97:52:68:3c:2c:a1:e7:bc:24:90:af:1a:09:49:8e: fd:8b:d0:c6:ee:75:fa:ea:af:4c:f3:63:b0:8d:44:4a:83:04: a5:22:50:b3:76:ff:9a:24:e2:a8:ce:0d:f2:75:c3:15:e4:5b: 32:3c:bc:75:eb:38:10:b9:9d:00:40:e6:5e:93:9f:9a:be:1b: bf:6f:f5:9e:94:46:39:ae:49:da:16:a2:66:a0:2b:6f:68:22: b9:b6:f6:71 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF NEI4NjExMC8GA1UEBRMoQTVDOTg3MDI0RDBBOEVBQzA5NjQwOUZEOTlFQzMyRUM5 MDQ3MEJBMzAeFw0yNTA4MjMwNzIzMTRaFw0yNTA4MzAwNzIzMTRaMBgxFjAUBgNV BAMTDTY4YTk2YzYyLTkwNjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDZ+50u+k7Rw5go09TrDC1+9QIWynyi/gY4M9sfD8ASZAWwCbPp2Sd7DxCE/ABB myW1lFCxq3g0ktAZSMO3zQjGLGc7dvmD8z95gAmiWwqCYaG4VDAhz16BH6D8VIYv R1c3/7hKkO/h/kzgJYjvtbBUaySr7kamVGMhWf1BtfXr/LI/q9YNx+qaYsa3ZnN3 nb63q9DBlf97jfDf1K5Qp3q0UDJJ1YD3zCQyLn65HhNO5+czxYsLc5UCzzNL5/l+ CyyuhAuwFaab2ac3DBP5PYQ4mFX3Drmwhpc+BFdI8byKs+5d+bE7APc7TcXur1Rd GKIUCE9JP5N3Yd6U7JS79QvjAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUtVNkIdI1 c9qVmvztnNN1GXOs/8swHwYDVR0jBBgwFoAUpcmHAk0KjqwJZAn9mewy7JBHC6Mw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU0Qjg2Lzg5MzMxNDhBRjdF MzExRUY4QURBOEE0MUM0RjlBRTAyL3BjbUhBazBLanF3SlpBbjltZXd5N0pCSEM2 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvcGNtSEFrMEtqcXdKWkFuOW1ld3k3SkJIQzZNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU0 Qjg2Lzg5MzMxNDhBRjdFMzExRUY4QURBOEE0MUM0RjlBRTAyL3BjbUhBazBLanF3 SlpBbjltZXd5N0pCSEM2TS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABs7FiS2wP0oNFU22KlB3pjEpEMK356xHsK9EywoYaBf/qAenfuTs0og rZhlKO8MnGaA/Py/gtyczYcLA3haHjpR6k29uyKBmkZpM+CH1geI6Fqd6g5jKWdN SZCVEFLfEiNQz/lDi31AHfQYoDp6DCl44hO/RXWPqKOXwAQ+l5lF4NDnFd94XBoX xh3aGWcgSmfOAdeZ8+mDAAGeyQNUKu8TPgpmmpdSaDwsoee8JJCvGglJjv2L0Mbu dfrqr0zzY7CNREqDBKUiULN2/5ok4qjODfJ1wxXkWzI8vHXrOBC5nQBA5l6Tn5q+ G79v9Z6URjmuSdoWomagK29oIrm29nE= -----END CERTIFICATE-----Generated at Sat Aug 23 17:54:47 2025 by rpki-client